Nginx Njs vulnerabilities

CVE-2022-35173 [HIGH] CWE-754 CVE-2022-35173: An issue was discovered in Nginx NJS v0.7.5. The JUMP offset for a break instruction was not set to An issue was discovered in Nginx NJS v0.7.5. The JUMP offset for a break instruction was not set to a correct offset during code generation, leading to a segmentation violation.

CVE-2022-30503 [MEDIUM] CVE-2022-30503: Nginx NJS v0.7.2 was discovered to contain a segmentation violation in the function njs_set_number a Nginx NJS v0.7.2 was discovered to contain a segmentation violation in the function njs_set_number at src/njs_value.h.

CVE-2022-29779 [MEDIUM] CVE-2022-29779: Nginx NJS v0.7.2 was discovered to contain a segmentation violation in the function njs_value_own_en Nginx NJS v0.7.2 was discovered to contain a segmentation violation in the function njs_value_own_enumerate at src/njs_value.c.

CVE-2022-29780 [MEDIUM] CVE-2022-29780: Nginx NJS v0.7.2 was discovered to contain a segmentation violation in the function njs_array_protot Nginx NJS v0.7.2 was discovered to contain a segmentation violation in the function njs_array_prototype_sort at src/njs_array.c.

CVE-2021-46461 [CRITICAL] CWE-119 CVE-2021-46461: njs through 0.7.0, used in NGINX, was discovered to contain an out-of-bounds array access via njs_vm njs through 0.7.0, used in NGINX, was discovered to contain an out-of-bounds array access via njs_vmcode_typeof in /src/njs_vmcode.c.